Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1314 matches found

OSV
OSVadded 2022/02/03 12:15 p.m.8 views

PYSEC-2022-110

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for ConcatV2 can be used to trigger a denial of service attack via a segfault caused by a type confusion. The axis argument is translated into concatdim in the ConcatShapeHelper helper function. Then, a...

6.5CVSS6.6AI score0.00831EPSS
Exploits1References4
Cvelist
Cvelistadded 2022/02/03 11:37 a.m.30 views

CVE-2022-21731 Type confusion leading to segfault in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for ConcatV2 can be used to trigger a denial of service attack via a segfault caused by a type confusion. The axis argument is translated into concatdim in the ConcatShapeHelper helper function. Then, a...

6.5CVSS6.6AI score0.00831EPSS
Exploits1References4
Debian CVE
Debian CVEadded 2022/02/03 11:37 a.m.3 views

CVE-2022-21731

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for ConcatV2 can be used to trigger a denial of service attack via a segfault caused by a type confusion. The axis argument is translated into concatdim in the ConcatShapeHelper helper function. Then, a...

6.5CVSS6.8AI score0.00831EPSS
Exploits1
CVE
CVEadded 2022/02/03 11:37 a.m.108 views

CVE-2022-21731

Technical details are not publicly available in the provided Connected documents. The Initial Description mentions a TensorFlow shape-inference vulnerability but does not specify affected products/versions beyond general references. Monitor for updates and official advisories for precise impact a...

6.5CVSS6.4AI score0.00831EPSS
Exploits1References4Affected Software1
OSV
OSVadded 2022/02/03 11:37 a.m.26 views

CVE-2022-21731 Type confusion leading to segfault in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for ConcatV2 can be used to trigger a denial of service attack via a segfault caused by a type confusion. The axis argument is translated into concatdim in the ConcatShapeHelper helper function. Then, a...

6.5CVSS6.3AI score0.00831EPSS
Exploits1References6
NVD
NVDadded 2022/02/03 11:15 a.m.15 views

CVE-2022-21727

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for Dequantize is vulnerable to an integer overflow weakness. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of dimensions of the...

8.8CVSS0.00649EPSS
Exploits1References3
PyPA
PyPAadded 2022/02/03 11:15 a.m.5 views

PYSEC-2022-51

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for Dequantize is vulnerable to an integer overflow weakness. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of dimensions of the...

8.8CVSS7.6AI score0.00649EPSS
Exploits1References3Affected Software1
Prion
Prionadded 2022/02/03 11:15 a.m.22 views

Integer overflow

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for Dequantize is vulnerable to an integer overflow weakness. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of dimensions of the...

6.5CVSS8.8AI score0.00649EPSS
Exploits1References3Affected Software1
PyPA
PyPAadded 2022/02/03 11:15 a.m.6 views

PYSEC-2022-52

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for ReverseSequence does not fully validate the value of batchdim and can result in a heap OOB read. There is a check to make sure the value of batchdim does not go over the rank of the input, but there...

8.1CVSS6.8AI score0.01108EPSS
Exploits1References4Affected Software1
PyPA
PyPAadded 2022/02/03 11:15 a.m.6 views

PYSEC-2022-107

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for ReverseSequence does not fully validate the value of batchdim and can result in a heap OOB read. There is a check to make sure the value of batchdim does not go over the rank of the input, but there...

8.1CVSS6.8AI score0.01108EPSS
Exploits1References4Affected Software1
PyPA
PyPAadded 2022/02/03 11:15 a.m.5 views

PYSEC-2022-106

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for Dequantize is vulnerable to an integer overflow weakness. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of dimensions of the...

8.8CVSS7.6AI score0.00649EPSS
Exploits1References3Affected Software1
Prion
Prionadded 2022/02/03 11:15 a.m.14 views

Heap overflow

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for ReverseSequence does not fully validate the value of batchdim and can result in a heap OOB read. There is a check to make sure the value of batchdim does not go over the rank of the input, but there...

5.5CVSS8AI score0.01108EPSS
Exploits1References4Affected Software1
OSV
OSVadded 2022/02/03 11:15 a.m.1 views

PYSEC-2022-106

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for Dequantize is vulnerable to an integer overflow weakness. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of dimensions of the...

8.8CVSS6.1AI score0.00649EPSS
Exploits1References3
OSV
OSVadded 2022/02/03 11:15 a.m.3 views

PYSEC-2022-107

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for ReverseSequence does not fully validate the value of batchdim and can result in a heap OOB read. There is a check to make sure the value of batchdim does not go over the rank of the input, but there...

8.1CVSS5.9AI score0.01108EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2022/02/03 11:7 a.m.8 views

CVE-2022-21727 Integer overflow in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for Dequantize is vulnerable to an integer overflow weakness. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of dimensions of the...

7.6CVSS8.9AI score0.00649EPSS
Exploits1References3
Debian CVE
Debian CVEadded 2022/02/03 11:7 a.m.4 views

CVE-2022-21727

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for Dequantize is vulnerable to an integer overflow weakness. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of dimensions of the...

8.8CVSS7.5AI score0.00649EPSS
Exploits1
CVE
CVEadded 2022/02/03 11:7 a.m.160 views

CVE-2022-21727

CVE-2022-21727 : TensorFlow’s Dequantize shape inference is vulnerable to an integer overflow because the axis bound is not checked before computing axis+1. The fix is to be included in TensorFlow 2.8.0, with cherry-picks to 2.7.1, 2.6.3, and 2.5.3. Remediation guidance across connected sources i...

8.8CVSS8.2AI score0.00649EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2022/02/03 11:7 a.m.27 views

CVE-2022-21727 Integer overflow in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for Dequantize is vulnerable to an integer overflow weakness. The axis argument can be -1 the default value for the optional argument or any other positive value at most the number of dimensions of the...

7.6CVSS8.8AI score0.00649EPSS
Exploits1References5
Debian CVE
Debian CVEadded 2022/02/03 10:55 a.m.3 views

CVE-2022-21728

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for ReverseSequence does not fully validate the value of batchdim and can result in a heap OOB read. There is a check to make sure the value of batchdim does not go over the rank of the input, but there...

8.1CVSS6.9AI score0.01108EPSS
Exploits1
CVE
CVEadded 2022/02/03 10:55 a.m.117 views

CVE-2022-21728

CVE-2022-21728 affects TensorFlow: ReverseSequence shape-inference can yield a heap-based out-of-bounds read because batch_dim is checked for being too large but not for negative values. The mitigation path is a forthcoming fix in TensorFlow 2.8.0, with cherry-picks into 2.7.1, 2.6.3, and 2.5.3. ...

8.1CVSS8AI score0.01108EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder